CVSS: 8.8EPSS: 0%CPEs: 11EXPL: 0CVE-2019-17366
https://notcve.org/view.php?id=CVE-2019-17366
Citrix Application Delivery Management (ADM) 12.1 before build 54.13 has Incorrect Access Control. Citrix Application Delivery Management (ADM) versión 12.1 anterior a build 54.13, presenta un Control de Acceso Incorrecto. • https://support.citrix.com/article/CTX261735 •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2019-13608 – Citrix StoreFront Server XML External Entity (XXE) Processing Vulnerability
https://notcve.org/view.php?id=CVE-2019-13608
Citrix StoreFront Server before 1903, 7.15 LTSR before CU4 (3.12.4000), and 7.6 LTSR before CU8 (3.0.8000) allows XXE attacks. Citrix StoreFront Server versiones anteriores a 1903, 7.15 LTSR antes del CU4 (3.12.4000) y versión 7.6 LTSR antes del CU8 (3.0.8000), permite ataques de tipo XXE. Citrix StoreFront Server contains an XML External Entity (XXE) processing vulnerability that may allow an unauthenticated attacker to retrieve potentially sensitive information. • https://support.citrix.com/article/CTX251988 • CWE-611: Improper Restriction of XML External Entity Reference •
CVSS: 10.0EPSS: 96%CPEs: 2EXPL: 1CVE-2019-12985
https://notcve.org/view.php?id=CVE-2019-12985
Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 have Improper Input Validation (issue 1 of 6). SD-WAN versiones 10.2.x anteriores a 10.2.3 de Citrix y SD-WAN versiones 10.0.x anteriores a 10.0.8 de NetScaler, presentan una Comprobación de Entrada Inapropiada (problema 1 de 6). • http://www.securityfocus.com/bid/109133 https://support.citrix.com/article/CTX251987 https://www.tenable.com/security/research/tra-2019-31 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 10.0EPSS: 96%CPEs: 2EXPL: 1CVE-2019-12986
https://notcve.org/view.php?id=CVE-2019-12986
Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 have Improper Input Validation (issue 2 of 6). SD-WAN versiones 10.2.x anteriores a 10.2.3 de Citrix y SD-WAN versiones 10.0.x anteriores a 10.0.8 de NetScaler, presentan una Comprobación de Entrada Inapropiada (problema 2 de 6). • http://www.securityfocus.com/bid/109133 https://support.citrix.com/article/CTX251987 https://www.tenable.com/security/research/tra-2019-31 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 10.0EPSS: 96%CPEs: 2EXPL: 1CVE-2019-12987
https://notcve.org/view.php?id=CVE-2019-12987
Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 have Improper Input Validation (issue 3 of 6). SD-WAN versiones 10.2.x anteriores a 10.2.3 de Citrix y SD-WAN versiones 10.0.x anteriores a 10.0.8 de NetScaler, presentan una Comprobación de Entrada Inapropiada (problema 3 de 6). • http://www.securityfocus.com/bid/109133 https://support.citrix.com/article/CTX251987 https://www.tenable.com/security/research/tra-2019-31 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •